Page 4 of 24 results (0.005 seconds)

CVSS: 7.1EPSS: 0%CPEs: 21EXPL: 0

CVE-2017-1760

https://notcve.org/view.php?id=CVE-2017-1760

IBM WebSphere MQ 7.5, 8.0, and 9.0 could allow a local user to crash the queue manager agent thread and expose some sensitive information. IBM X-Force ID: 126454. IBM WebSphere MQ 7.5, 8.0 y 9.0 podría permitir que un usuario local provoque el cierre inesperado del hilo del agente del gestor de cola y exponer información sensible. IBM X-Force ID: 126454. • http://www.ibm.com/support/docview.wss?uid=swg22005392 https://exchange.xforce.ibmcloud.com/vulnerabilities/126454 •

CVSS: 4.3EPSS: 0%CPEs: 12EXPL: 0

CVE-2017-1341

https://notcve.org/view.php?id=CVE-2017-1341

IBM WebSphere MQ 8.0 and 9.0 could allow, under special circumstances, an unauthorized user to access an object which they should have been denied access. IBM X-Force ID: 126456. IBM WebSphere MQ 8.0 y 9.0 podría permitir, bajo circunstancias especiales, que un usuario no autorizado acceda a un objeto para el que no deberían contar con acceso. IBM X-Force ID: 126456. • http://www.ibm.com/support/docview.wss?uid=swg22005400 http://www.securityfocus.com/bid/102042 https://exchange.xforce.ibmcloud.com/vulnerabilities/126456 •

CVSS: 4.3EPSS: 0%CPEs: 14EXPL: 0

CVE-2017-1283

https://notcve.org/view.php?id=CVE-2017-1283

IBM WebSphere MQ 8.0 and 9.0 could allow an authenticated user to cause a shared memory leak by MQ applications using dynamic queues, which can lead to lack of resources for other MQ applications. IBM X-Force ID: 125144. Las versiones 8.0 y 9.0 de IBM WebSphere MQ podrían permitir que un usuario autenticado provoque una fuga de memoria compartida por aplicaciones MQ empleando consultas dinámicas, lo que podría conducir a una falta de recursos para otras aplicaciones MQ. IBM X-Force ID: 125144. • http://www.ibm.com/support/docview.wss?uid=swg22003852 https://exchange.xforce.ibmcloud.com/vulnerabilities/125144 • CWE-772: Missing Release of Resource after Effective Lifetime •

CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-1285

https://notcve.org/view.php?id=CVE-2017-1285

IBM WebSphere MQ 9.0.1 and 9.0.2 could allow an authenticated user with authority to send a specially crafted message that would cause a channel to remain in a running state but not process messages. IBM X-Force ID: 125146. IBM WebSphere MQ 9.0.1 y 9.0.2 podría permitir a un usuario autenticado con autoridad para enviar mensajes especialmente manipulados que causarían que un canal permaneciese en un estado de ejecución pero no procesaría mensajes. IBM X-Force ID: 125146. • http://www.securityfocus.com/bid/99538 https://exchange.xforce.ibmcloud.com/vulnerabilities/125146 https://www.ibm.com/support/docview.wss?uid=swg22003856 • CWE-20: Improper Input Validation •

CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-1284

https://notcve.org/view.php?id=CVE-2017-1284

IBM WebSphere MQ 9.0.1 and 9.0.2 could allow a local user with ability to run or enable trace, to obtain sensitive information from WebSphere Application Server traces including user credentials. IBM X-Force ID: 125145. IBM WebSphere MQ 9.0.1 y 9.0.2 podría permitir a un usuario local con habilidad de ejecución o activación de rutas, obtener información sensible desde rutas de WebSphere Application Server incluidas credenciales de usuario. X-Force ID: 125145. • http://www.ibm.com/support/docview.wss?uid=swg22003851 http://www.securityfocus.com/bid/99494 https://exchange.xforce.ibmcloud.com/vulnerabilities/125145 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •